The Vietnam-aligned threat actor known as OceanLotus has been attributed to two distinct campaigns that targeted domestic ...

Writing my own virtualized loader is something I’ve been wanting to do since I first read Microsoft’s deep dive on FinFisher’s multi-layered VM obfuscation back in 2018. FinFisher didn’t just use one ...

Our tracking of OceanLotus activities from 2024–2026 reveals a shift in operational focus. During this period, the Vietnam-aligned OceanLotus adopted a more selective approach to external operations ...

X.Org Server vulnerability patch released June 2 fixes nine flaws — eight found by TrendAI’s FENRIR static analysis tool, the fourth AI-assisted batch this year. Versions xorg-server 21.1.23 and ...

ESET researchers have discovered SprySOCKS for Windows, FishMonger’s backdoor weaponizing a kernel driver for advanced ...

Windows 11: A guide to the updates Here’s what you need to know about the latest updates to Windows 11 as they’re released from Microsoft. Now updated for KB5094126 (Windows 11 24H2 and 25H2) and ...

Get shellcode from raw file, PE, DLL or from a URL ...

The write-up follows the exploitation workflow from reverse engineering with Cutter to payload development and remote exploitation using Pwntools, GDB/pwndbg, Python, and Linux debugging techniques.

Terms often used in cybersecurity discussions and education, briefly defined. Your corrections, suggestions, and recommendations for additional entries are welcome: email the editor at editor@n2k.com.

Customer stories Events & webinars Ebooks & reports Business insights GitHub Skills ...

Tammy Harper's deep dive on FalkonC2 and its enterprise variant Rotemelli2 got featured in The Hacker News today. When attackers rotate C2 domains every 72 hours and ride on trusted remote access ...